Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
File: 1kBlpUFdmUI5AUXyJHkB2TZFidc.mft (raw, json)
Hash identifier: t3qwE0X4KXhA6Uktj2zoXbSwTi4lTQPR2gFAyFHkKCs=
Subject key identifier: 55:84:EE:8D:25:69:6E:DC:EC:62:95:2A:C4:E0:35:0B:5E:3D:D2:BE
Authority key identifier: D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7
Certificate issuer: /CN=d64065a5415d9942390145f2247901d9364589d7
Certificate serial: 019405A10007B2E52279FA7AD1C909D501CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
Manifest number: 089F
Signing time: Fri 27 Dec 2024 01:00:24 +0000
Manifest this update: Fri 27 Dec 2024 01:00:24 +0000
Manifest next update: Sat 28 Dec 2024 01:00:24 +0000
Files and hashes: 1: 1kBlpUFdmUI5AUXyJHkB2TZFidc.crl (hash: FYIsgoE+ClHgucJ4MDN42I+PXX2gpWZLMZIciSf5Yk0=)
2: Yty59qPHmnMYtfYDQwPZn9nnuT4.roa (hash: PBqBbRA0M5rZsHqwhx1SfcEYouNde0+lwmzOku6g6+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:05:a1:00:07:b2:e5:22:79:fa:7a:d1:c9:09:d5:01:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d64065a5415d9942390145f2247901d9364589d7
Validity
Not Before: Dec 27 01:00:24 2024 GMT
Not After : Dec 28 01:00:24 2024 GMT
Subject: CN=5584ee8d25696edcec62952ac4e0350b5e3dd2be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3e:91:c3:7a:a3:c1:f8:3c:10:4f:12:30:4b:
c3:97:05:b2:13:16:25:48:e4:11:41:c6:00:07:1e:
ed:cf:4c:dd:7b:0c:55:4e:92:47:de:68:71:d2:8e:
61:82:7a:a8:15:9f:16:9b:23:12:67:e3:04:dd:fc:
d1:a5:a6:28:5b:3e:ec:34:aa:e3:0d:bd:0a:26:0a:
79:46:87:ae:24:1a:ae:ea:f5:79:b8:d9:75:c8:e7:
ee:48:e7:99:7d:dc:9b:69:4c:33:a4:65:65:41:74:
2b:89:f4:f2:ab:c0:d5:ea:28:27:39:94:cd:08:45:
ff:a4:f3:3e:96:dd:10:28:22:94:de:10:51:9f:2f:
4e:fe:86:fc:4c:15:a0:85:95:c2:4a:8f:ae:e2:6b:
f5:02:9a:6a:6d:67:a5:94:b1:35:81:44:ea:1e:6f:
73:c5:ed:cc:9c:48:2a:91:f6:44:6a:91:60:da:5e:
15:fb:7d:74:45:7e:36:d9:04:32:13:92:3a:06:b5:
b1:9b:6d:b0:dd:e6:b4:8e:58:9b:86:e0:2c:5d:e5:
9b:30:e2:96:6f:ee:3a:d8:53:c8:5a:f4:02:9b:01:
b7:e6:63:40:0e:e1:dc:46:ab:8f:5b:2c:db:a3:35:
28:0c:1b:d8:5f:2a:8b:93:bb:b5:ec:23:42:fd:5d:
79:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:84:EE:8D:25:69:6E:DC:EC:62:95:2A:C4:E0:35:0B:5E:3D:D2:BE
X509v3 Authority Key Identifier:
keyid:D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:dd:73:6e:fc:39:dc:21:11:fa:e7:14:d1:77:ee:c8:22:05:
a4:f3:5f:11:26:5c:35:56:4a:03:9c:c3:15:b8:5d:ec:2c:7b:
b2:53:9a:76:0c:8e:f5:aa:40:5c:82:50:1e:47:78:11:da:1a:
f1:86:03:b4:10:d1:43:5c:2e:50:3b:4b:ea:62:36:f0:ee:3a:
4e:ce:4b:d9:a4:f0:72:cc:95:22:3c:2b:d8:2c:09:6f:ef:49:
9d:5d:a9:2d:11:cd:24:96:ab:c2:4b:d0:a6:51:7a:7b:9d:bf:
c2:b2:0a:2e:a8:e5:aa:c5:f8:c5:ce:33:a5:2f:98:e1:2e:58:
10:2b:55:36:75:f3:1a:0c:40:a8:54:1a:0c:2e:c4:1a:9d:42:
bb:c3:11:7b:29:39:be:1b:8b:67:5a:56:02:d6:76:ec:f1:a7:
68:33:b4:9d:bc:d0:e3:f2:9e:3e:8f:33:ae:93:be:8d:1c:16:
8f:ca:1c:10:fd:a1:dc:bb:4e:58:ca:dc:b4:a2:f7:52:1b:55:
b4:2b:4d:36:26:63:5f:dd:3b:74:7a:e6:30:9b:a8:b6:6d:14:
cb:c7:b9:ad:66:b9:06:e9:0f:da:06:49:23:4a:b5:36:e4:a7:
5c:fe:b1:b0:0e:cb:10:10:14:25:8f:df:78:9f:b6:bf:09:71:
64:d2:af:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 11:10:35 2024 by rpki-client on console-fra.rpki-client.org